8 matches found
EUVD-2017-11317
Malware in sbrugna...
CVE-2017-2134
Cross-site scripting vulnerability in ASSETBASE 8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2134
Cross-site scripting vulnerability in ASSETBASE 8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in ASSETBASE 8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2134
Cross-site scripting vulnerability in ASSETBASE 8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2134
CVE-2017-2134 is an XSS vulnerability in ASSETBASE 8.0 and earlier (CWE-79). The issue allows remote attackers to inject arbitrary web script or HTML, potentially executing in the browser of an administrator. The root cause and affected component are documented in multiple connected records (ASSE...
ASSETBASE vulnerable to cross-site scripting
Overview ASSETBASE provided by UCHIDA YOKO CO., LTD. is an IT asset management tool. ASSETBASE contains a cross-site scripting vulnerability CWE-79. Keitaro Yamazaki of Kyoto University reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early...
JVN#82019695: ASSETBASE vulnerable to cross-site scripting
ASSETBASE provided by UCHIDA YOKO CO., LTD. is an IT asset management tool. ASSETBASE contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of a user who logged-in as an administrator. Solution Update the Software Update to the latest...